Summary
Acute Control Panel is prone to multiple input-validation vulnerabilities, including an SQL-injection issue and and multiple remote file-include issues.
A successful exploit may allow an attacker to execute malicious code within the context of the webserver process, compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.
Acute Control Panel 1.0.0 is vulnerable
other versions may also be affected.
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2009-1247 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- AlefMentor Multiple SQL Injection Vulnerabilities
- Ad Manager Pro Multiple SQL Injection And XSS Vulnerabilities
- Apache Tomcat Windows Installer Privilege Escalation Vulnerability
- Apache Struts2 'URL' & 'Anchor' tags Arbitrary Java Method Execution Vulnerabilities
- AdaptBB Multiple Input Validation Vulnerabilities